可编程数据平面的端口敲打实现

2021 13th International Conference on Information & Communication Technology and System (ICTS) Pub Date : 2021-10-20 DOI:10.1109/ICTS52701.2021.9608629

M. A. Nugroho, Sidik Prabowo, Mas'ud Adhi Saputra, M. Abdurohman

{"title":"可编程数据平面的端口敲打实现","authors":"M. A. Nugroho, Sidik Prabowo, Mas'ud Adhi Saputra, M. Abdurohman","doi":"10.1109/ICTS52701.2021.9608629","DOIUrl":null,"url":null,"abstract":"This paper proposes the port knocking method to offload the network functions on Software-Defined Networks to programmable data plane. The main drawback of centralized SDN controller architecture is causing bottlenecks in the network because every packet that arrives at the switch must be forwarded to the controller first. The controller will decide whether the packet is allowed to be forwarded or dropped, resulting in increased processing delay for packet processing. There are several previous methods have been proposed. However, they could not meet the need of network performance. Thus, we decide to migrate the several controller functions in the data plane. This paper presents port knocking (PkoCK) implementation in programmable data plane. PKock successfully offloads the port knocking implementation to the data plane and reduces the processing delay 19% compared to SDN-based port knocking.","PeriodicalId":6738,"journal":{"name":"2021 13th International Conference on Information & Communication Technology and System (ICTS)","volume":"26 1","pages":"35-39"},"PeriodicalIF":0.0000,"publicationDate":"2021-10-20","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Port Knocking Implementation on Programmable Data Plane\",\"authors\":\"M. A. Nugroho, Sidik Prabowo, Mas'ud Adhi Saputra, M. Abdurohman\",\"doi\":\"10.1109/ICTS52701.2021.9608629\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"This paper proposes the port knocking method to offload the network functions on Software-Defined Networks to programmable data plane. The main drawback of centralized SDN controller architecture is causing bottlenecks in the network because every packet that arrives at the switch must be forwarded to the controller first. The controller will decide whether the packet is allowed to be forwarded or dropped, resulting in increased processing delay for packet processing. There are several previous methods have been proposed. However, they could not meet the need of network performance. Thus, we decide to migrate the several controller functions in the data plane. This paper presents port knocking (PkoCK) implementation in programmable data plane. PKock successfully offloads the port knocking implementation to the data plane and reduces the processing delay 19% compared to SDN-based port knocking.\",\"PeriodicalId\":6738,\"journal\":{\"name\":\"2021 13th International Conference on Information & Communication Technology and System (ICTS)\",\"volume\":\"26 1\",\"pages\":\"35-39\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2021-10-20\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2021 13th International Conference on Information & Communication Technology and System (ICTS)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICTS52701.2021.9608629\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 13th International Conference on Information & Communication Technology and System (ICTS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICTS52701.2021.9608629","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

摘要

提出了将软件定义网络的网络功能转移到可编程数据平面的端口敲打方法。集中式SDN控制器架构的主要缺点是在网络中造成瓶颈，因为到达交换机的每个数据包都必须首先转发到控制器。控制器将决定是否允许转发或丢弃数据包，从而增加了数据包处理的处理延迟。以前已经提出了几种方法。然而，它们不能满足网络性能的需要。因此，我们决定迁移数据平面中的几个控制器函数。本文介绍了可编程数据平面上端口敲打(PkoCK)的实现。与基于sdn的端口敲门相比，pock成功地将端口敲门的实现转移到数据平面，并减少了19%的处理延迟。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Port Knocking Implementation on Programmable Data Plane

This paper proposes the port knocking method to offload the network functions on Software-Defined Networks to programmable data plane. The main drawback of centralized SDN controller architecture is causing bottlenecks in the network because every packet that arrives at the switch must be forwarded to the controller first. The controller will decide whether the packet is allowed to be forwarded or dropped, resulting in increased processing delay for packet processing. There are several previous methods have been proposed. However, they could not meet the need of network performance. Thus, we decide to migrate the several controller functions in the data plane. This paper presents port knocking (PkoCK) implementation in programmable data plane. PKock successfully offloads the port knocking implementation to the data plane and reduces the processing delay 19% compared to SDN-based port knocking.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2021 13th International Conference on Information & Communication Technology and System (ICTS)

自引率

0.00%

发文量